[Last Call] Learn about multicloud storage options and how to improve your company's cloud strategy. Register Now

x
?
Solved

Draytek 3300

Posted on 2009-05-20
9
Medium Priority
?
1,873 Views
Last Modified: 2012-05-07
Im trying to do a full address map from a public IP to a private IP so I can access a range of TCP and UDP services publically. I have done the mapping on my 3300 in advanced\NAT\address mapping, all the res of the settings are pretty much defalut for now. Is something else blocking it or it there some diagnostics view I can look at?
0
Comment
Question by:mistyfly
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 3
9 Comments
 
LVL 22

Expert Comment

by:Syed Mutahir Ali
ID: 24434566
Assuming you are using 1 WAN connection only with multiple Public Addresses (Allocated to you by your ISP as you mentioned in your previous Post).
If you have a Block of Public addresses, you can specify a 2nd Subnet in Lan Settings, Assign ONE Public IP from that POOL with the correct subnet mask and then assign the remainder of your public addresses to your Servers/Machines behind your 3300.
3300 Will route them too and would know and serve requests for them as well.
If you want to just create port mappings , you can put that server in the DMZ option, but because you have public ip pool , I would say to specify the 2nd subnet option.
You can specify the 2nd Public Subnet Per WAN Port of 3300, For e.g. If you are connected via WAN1 you can go under Network Menu > LAN , then click the IP routing TAB, Enable WAN 1 and type ONE IP Address and the correct subnet mask from that POOL of allocated IP Address. You can then specify any Public IP from that pool with that subnet mask to any machine behind 3300 and it will work !!

3300-Lan2nd-Subnet.jpg
0
 

Author Comment

by:mistyfly
ID: 24439679
I an't seem to get it to work. I have given the WAN 1 interface my last useable address in the pool in \Network - WAN - WAN1 - Fast Ethernet\ip address assignment method, and also clicked IP alias and specified all my useable addresses on the WAN interface. Thanks ok and works fine with regards to internet access. I then assigned the first useable public address to the field you said in the above pic, and I also set a NAT route up to my LAN host in the NAT settings but it still will not work
0
 
LVL 22

Expert Comment

by:Syed Mutahir Ali
ID: 24441161
The IP Address you assign in IP Routing don't get NAT'd
So, you either specify in WAN IP Alias and leave the 2nd SUBNET (IP Routing option off) or enable IP Routing and then do it.
0
Looking for the Wi-Fi vendor that's right for you?

We know how difficult it can be to evaluate Wi-Fi vendors, so we created this helpful Wi-Fi Buyer's Guide to help you find the Wi-Fi vendor that's right for your business! Download the guide and get started on our checklist today!

 
LVL 22

Expert Comment

by:Syed Mutahir Ali
ID: 24441176
I will look into it later, but the pool you have should be only specified in IP Routing
I am not sure where you are assigning your IP Addresses,
please take scrshots and save it in a pdf file n attach it here.
0
 

Author Comment

by:mistyfly
ID: 24441936
I was trying to assign my public IP's in the NAT table? Is this not right. Not quite sure what you need but have attached the below.
300LANIPROUTE.bmp
3300WAN1.bmp
0
 
LVL 22

Expert Comment

by:Syed Mutahir Ali
ID: 24443228
Please provide your ip details
the block of ip from your provider with the subnet mask
if you don't specify the ip for your WAN1 ; do you get a dynamic ip from your ISP ?
disable all port forwarding/open port or one to one nat host enteries
just specify the 2nd subnet in your IP routing section of WAN 1
 
0
 

Author Comment

by:mistyfly
ID: 24443493
OK I've got working what I wanted using the port forwarding section, I still have my 2nd subnet disabled on the Lan\ip routing though? I was using Nat\address mapping to try and get my inbound translation to work bu couldn't do it hat way. So i used port re-direction and that worked? Can I do a one-to-one Nat using the 3300 as I thought thats what the address mapping section was for?

Yes I do get a DHCP address from my ISP if I don't specify one in WAN1 PPPoE settings
0
 
LVL 22

Accepted Solution

by:
Syed Mutahir Ali earned 2000 total points
ID: 24449405
If you have a block of IP Address, you can specify that in 2nd Subnet (WAN > IP Routing section) that will enable you to assign the other public ip addresses from that pool directly to your Servers/Machines, and 3300 will route for them as well ; they won't be natted
Why do you want to use NAT when you have a block of Public address and you can assign them on to your servers directly ? or you can create a one to one NAT as well.
When you do port redirection/port mapping/nat mapping ; make sure to change your 3300 http and https management port to something else then the default ; and make sure you are not over riding any ports.
 
0
 

Expert Comment

by:MARTYL200UK
ID: 36532998
I was wondering if someone can help me out with a similar issue.
I use to use a vigor 2800 router before i got a a draytek v3300 router.
I have two broadband lines bonded together with sharedband. With the vigor 2800v i use to use open ports to director certain ports to certain pc's within the company network from outside. I can not seem to get this to work on the V3300.

Any help would be appreicated.

Martin
0

Featured Post

Free Tool: Path Explorer

An intuitive utility to help find the CSS path to UI elements on a webpage. These paths are used frequently in a variety of front-end development and QA automation tasks.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Optimal Xbox 360 connectivity requires "OPEN NAT". If you use Juniper Netscreen or SSG firewall products in a home setting, the following steps will allow you get rid of the dreaded warning screen below and achieve the best online gaming environment…
This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…
Is your data getting by on basic protection measures? In today’s climate of debilitating malware and ransomware—like WannaCry—that may not be enough. You need to establish more than basics, like a recovery plan that protects both data and endpoints.…
Suggested Courses

656 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question